Uses too much entropy (Debian Bug #343085)

Matthias Urlichs smurf at
Fri Jan 4 13:21:16 CET 2008


Nikos Mavrogiannopoulos:
> I don't understand these comments. The libgcrypt's generator can be
> used in a separate processes. It doesn't mean it gathers any entropy
> except for using /dev/urandom as usual.
Ah, thanks for the correction.

In that case, if it's "as usual", why run the daemon in the first place?

To clarify: I don't have an issue with gnutls eating randomness from the
pool. The randomness is there to be eaten.

However, reading 3000+ bits every time a server (or client) starts up
does seem a bit excessive. I seriously doubt that it needs that many.

Matthias Urlichs   |   {M:U} IT Design @   |  smurf at
Disclaimer: The quote was selected randomly. Really. |
 - -
Military justice is to justice what military music is to music.
		-- Groucho Marx

More information about the Gnutls-devel mailing list